Non-Repeatable Challenge-Response Authentication

1. A method, comprising: generating a user-specific and non-repeatable challenge and a response for a user who was already authenticated with a first factor authentication by an authentication mechanism of an online system and the user is being authenticated for a second factor authentication by an authentication system, wherein the authentication mechanism of the online system interfaced to the authentication system, wherein generating further includes obtaining the user-specific and non-repeatable challenge from a plurality of different communication channels associated with a history of user activity, and wherein at least one of the different communication channels includes a social media communication channel, wherein the user-specific and non-repeatable challenge is temporal based; providing the user-specific and non-repeatable challenge to the authentication system; receiving a proposed response from the authentication system; sending an indication of success or failure to the authentication system based on comparison of the proposed response and the response, wherein the authentication system provides the success or the failure to the online system as a second-factor authentication result for the second factor authentication; maintaining an identifier for user-specific and non-repeatable challenge, flagging the identifier as asked of the user, and ensuring the response is not stored or retained, wherein flagged identifiers ensure that each previously provided user-specific and non-repeatable challenge is only presented to the user one time and is never repeated; and iterating back to the generating when the indication is the failure by generating a different user-specific and non-repeatable challenge and a different response for the user until the indication is a success for the second factor authentication or until a preset number of iterations have been processed where the indication remains as the failure, wherein the present number of iterations is defined by an authentication policy set by the online system.

2. The method of claim 1 , wherein generating further includes identifying a domain template linked to a user in response to user identifying information for the user supplied by the authentication system.

3. The method of claim 2 further comprising: randomly selecting a question from the domain template; and ensuring that the selected question has never been used before for the user during any authentication session with any authentication system.

4. The method of claim 3 further comprising, searching user behavioral aggregated data using the user identifying information and the selected question.

5. The method of claim 4 further comprising, populating variables identified in the domain template received as results from the searching.

6. The method of claim 5 , wherein providing further includes providing a populated domain template as the user-specific and non-repeatable challenge and retaining identification of the response as an expected response to the user-specific and non-repeatable challenge.

7. The method of claim 1 , wherein generating further includes generating the user-specific and non-repeatable challenge and the response based on a recent in time activity of the user, wherein the recent in time activity is a same day or within a few days of when the user requested authentication to the authentication system.

8. The method of claim 7 , wherein generating further includes identifying the recent in time activity as one of: a financial transaction made by the user, a venue visited by the user, a social post to a social media site made by the user, and a location visited by the user.

9. The method of claim 1 , wherein providing further includes providing the response embedded in the user-specific and non-repeatable challenge along with improper responses for user selection of one of: the response and one of the improper responses.

10. The method of claim 1 further comprising, dynamically adjusting the generating upon detection of new behavioral patterns with the user.

11. The method of claim 1 further comprising, maintaining a metric as to whether the indication was successful or unsuccessful and processing the metric with other metrics to adjust the generating.